|
Posted by d on 01/23/06 02:04
"NC" <nc@iname.com> wrote in message
news:1137691323.640777.41160@g44g2000cwa.googlegroups.com...
>d wrote:
>>
>> I was saying that sending the current password to the
>> user is easier for the user than sending them a new one.
>
> Maybe (although I have a problem believeing that the user is going to
> care, since they forgot what the password was anyway), but there are at
> least two security flaws with this approach. First, if passwords are
> recoverable, they can be stolen by hackers or misappropriated by the
> site's operator or hosting service. Second, sending a permanent
> password via e-mail is a permanent security hole; sending out a
> temporary password with instructions to reset it as soon as possible
> makes this hole temporary.
This is all up to the project manager of the site in question. It can
obviously be done either way, and some people don't want temporary passwords
sent.
>> The only reason one would send them a new password is
>> because their password isn't readable on the server.
>> That's done through security needs of the server, as opposed
>> to desired functionality.
>
> Not at all. Deterring theft of passwords by employees of site operator
> or hosting company is in fact a desired functionality...
Yes, but the way in which it is done might not be desired functionality.
Things can always be more secure, but at a certain point the extra security
will impinge on the site's usability.
> Cheers,
> NC
>
[Back to original message]
|